CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

131 matches found

CISA•added 2026/05/07 12:0 p.m.•5 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-6973link is external Ivanti Endpoint Manager Mobile EPMM Improper Input Validation Vulnerability This type of vulnerability is a frequent attack vector for...

7.2CVSS6AI score0.05543EPSS

In wildExploits0References6

CISA•added 2026/03/25 12:0 p.m.•7 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-33017link is external Langflow Code Injection Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses...

9.8CVSS5.9AI score0.24652EPSS

In wildExploits16References6

CISA•added 2026/01/27 12:0 p.m.•8 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-24858link is external Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability This type of vulnerability is a...

9.8CVSS5.9AI score0.04801EPSS

In wildExploits0References6

CISA•added 2026/01/13 12:0 p.m.•12 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-20805link is external Microsoft Windows Information Disclosure Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actor...

5.5CVSS6.6AI score0.02955EPSS

In wildExploits5References6

CISA•added 2025/11/21 12:0 p.m.•9 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-61757link is external Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability This type of vulnerability is a frequent attack...

9.8CVSS6.8AI score0.87828EPSS

In wildExploits1References6

Hive Pro Threat Advisories•added 2025/10/13 3:16 p.m.•0 views

CISA Known Exploited Vulnerabilities May 2025: A Guide

Your vulnerability management backlog is probably overflowing. With thousands of new CVEs disclosed every year, it’s impossible to patch everything, and trying to do so leads to burnout and wasted effort. The CISA KEV catalog is the answer to this overwhelming noise. It’s not just another list of...

6.3AI score

Exploits0

Packet Storm News•added 2025/10/09 12:0 a.m.•4 views

An AUTOSAR-Aligned Architectural Study of Vulnerabilities in Automotive SoC Software

Cooperative, Connected and Automated Mobility CCAM are complex cyber-physical systems CPS that integrate computation, communication, and control in safety-critical environments. At their core, System-on-Chip SoC platforms consolidate processing units, communication interfaces, AI accelerators, an...

6.9AI score

Exploits0

CISA•added 2025/07/14 12:0 p.m.•12 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-47812link is external Wing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerability These types of vulnerabilities are frequent attack...

10CVSS7.3AI score0.92927EPSS

In wildExploits23References6

CISA•added 2025/05/05 12:0 p.m.•134 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-3248link is external Langflow Missing Authentication Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose...

9.8CVSS7.3AI score0.92853EPSS

In wildExploits33References6

CISA•added 2025/04/01 12:0 p.m.•8 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-24813link is external Apache Tomcat Path Equivalence Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose...

10CVSS7.3AI score0.9413EPSS

In wildExploits44References6

CISA•added 2025/03/31 12:0 p.m.•6 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-20439link is external Cisco Smart Licensing Utility Static Credential Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cybe...

9.8CVSS7.3AI score0.87147EPSS

In wildExploits0References6

CISA•added 2025/03/10 12:0 p.m.•3 views

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-25181link is external Advantive VeraCore SQL Injection Vulnerability CVE-2024-57968link is external Advantive VeraCore Unrestricted File Upload Vulnerability...

9.9CVSS8.6AI score0.94048EPSS

In wildExploits5References10

CISA•added 2025/02/12 12:0 p.m.•2 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-24200link is external Apple iOS and iPadOS Incorrect Authorization Vulnerability CVE-2024-41710link is external Mitel SIP Phones Argument Injection Vulnerabili...

7.2CVSS7.1AI score0.4843EPSS

In wildExploits3References7

CISA•added 2024/12/04 12:0 p.m.•21 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-51378link is external CyberPanel Incorrect Default Permissions Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actor...

10CVSS7.2AI score0.93851EPSS

In wildExploits7References6

OpenVAS•added 2024/12/04 12:0 a.m.•9 views

Debian: Security Advisory (DLA-3982-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.00964EPSS

Exploits1References4

CISA•added 2024/11/20 12:0 p.m.•11 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-38812link is external VMware vCenter Server Heap-Based Buffer Overflow Vulnerability CVE-2024-38813link is external VMware vCenter Server Privilege Escalation...

9.8CVSS7.4AI score0.77869EPSS

In wildExploits0References7

RedHat Linux•added 2024/11/14 3:24 p.m.•1 views

webkitgtk: Arbitrary Remote Code Execution

A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA's KEV catalog...

8.8CVSS7.4AI score0.00089EPSS

Exploits0References6

CISA•added 2024/11/07 12:0 p.m.•15 views

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-43093link is external Android Framework Privilege Escalation Vulnerability CVE-2024-51567link is external CyberPanel Incorrect Default Permissions Vulnerabili...

10CVSS7AI score0.94393EPSS

In wildExploits40References9

CISA•added 2024/10/24 12:0 p.m.•14 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation , as confirmed by Fortinet. CVE-2024-47575link is external Fortinet FortiManager Missing Authentication Vulnerability These types of vulnerabilities are frequent attack...

9.8CVSS9.8AI score0.93874EPSS

In wildExploits7References8

OpenVAS•added 2024/10/24 12:0 a.m.•20 views

Slackware: Security Advisory (SSA:2024-297-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.94374EPSS

Exploits68References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by